<?php

class UserController extends Controller
{
	/**
	 * @var string the default layout for the views. Defaults to '//layouts/column2', meaning
	 * using two-column layout. See 'protected/views/layouts/column2.php'.
	 */
	public $layout='//layouts/columnMgt';
	public $sidebarMenu=array(
								array('label'=>'Roster Control', 'url'=>array('/roster/index')),
								array('label'=>'Shift Changes', 'url'=>array('/shiftChange/management')),
								array('label'=>'User Schedules', 'url'=>array('/schedule/index')),
								array('label'=>'Maintenance', 'url'=>array('/site/maintenance')),
								array('label'=>'Reporting', 'url'=>array('/site/reporting')),
							);
	
	protected function beforeAction($action) {
		if(!(Yii::app()->user->isGuest)) {
			$this->links =  Links::getTeamLinks(Yii::app()->user->team_id);
			
			if(empty($this->links)) {
				$this->links = array(array('label'=>'---','url'=>'#'));
				return true;
			} else
				return true;
		}
		else
			return true;
	}
							
	/**
	 * @return array action filters
	 */
	public function filters()
	{
		return array(
			'accessControl', // perform access control for CRUD operations
			'postOnly + delete', // we only allow deletion via POST request
		);
	}

	/**
	 * Specifies the access control rules.
	 * This method is used by the 'accessControl' filter.
	 * @return array access control rules
	 */
	public function accessRules()
	{
		return array(

			array('allow', // allow  user to perform the following actions
				'actions'=>array('delete',),
				'expression'=>'$user->can_create_edit_roles == 1',
			),
			array('allow', // allow  user to perform the following actions
				'actions'=>array('admin','create','update','view'),
				'expression'=>'$user->can_create_edit_users == 1',
			),
			array('allow', // allow admin user to perform the following actions
				'actions'=>array('shortView','change_password'),
				'users'=>array('@'),
				'expression'=>'$user->can_create_qshift_change == 1',
			),					
			array('deny',  // deny all users
				'users'=>array('*'),
			),
		);
	}

	/**
	 * Displays a particular model.
	 * @param integer $id the ID of the model to be displayed
	 */
	public function actionView($id)
	{
		$this->render('view',array(
			'model'=>$this->loadModel($id),
		));
	}
	
	public function actionShortView($id)
	{
		$this->sidebarMenu=array(
								array('label'=>'Team Q-Shifts', 'url'=>array('/qshift/team_Qshifts' , 'team'=>Yii::app()->user->team_id)),
								array('label'=>'My Q-Shifts', 'url'=>array('/qshift/my_qshifts')),
								array('label'=>'Swap Q-Shift', 'url'=>array('/qshift/swap')),
								array('label'=>'Swap Management', 'url'=>array('/shiftchange/swap_management')),
								);		
		$this->render('shortView',array(
			'model'=>$this->loadModel($id),
		));
	}

	/**
	 * Creates a new model.
	 * If creation is successful, the browser will be redirected to the 'view' page.
	 */
	public function actionCreate()
	{
		$model=new User;
		// Uncomment the following line if AJAX validation is needed
		// $this->performAjaxValidation($model);

		if(isset($_POST['User']))
		{
			$model->attributes=$_POST['User'];
			if($model->save())
				$this->redirect(array('view','id'=>$model->iduser));
		}
		
		$model->team = Yii::app()->user->team_id;
		
		$this->render('create',array(
			'model'=>$model,
		));
	}

	/**
	 * Updates a particular model.
	 * If update is successful, the browser will be redirected to the 'view' page.
	 * @param integer $id the ID of the model to be updated
	 */
	public function actionUpdate($id)
	{
		$model=$this->loadModel($id);

		// Uncomment the following line if AJAX validation is needed
		// $this->performAjaxValidation($model);

		if(isset($_POST['User']))
		{
			$model->attributes=$_POST['User'];
			$model->confirmPassword = $model->password;
			
			if($model->save())
				$this->redirect(array('view','id'=>$model->iduser));
		}

		$this->render('update',array(
			'model'=>$model,
		));
	}

	/**
	 * Deletes a particular model.
	 * If deletion is successful, the browser will be redirected to the 'admin' page.
	 * @param integer $id the ID of the model to be deleted
	 */
	public function actionDelete($id)
	{
		$this->loadModel($id)->delete();

		// if AJAX request (triggered by deletion via admin grid view), we should not redirect the browser
		if(!isset($_GET['ajax']))
			$this->redirect(isset($_POST['returnUrl']) ? $_POST['returnUrl'] : array('admin'));
	}

	/**
	 * Lists all models.
	 */
	public function actionIndex()
	{
		$dataProvider=new CActiveDataProvider('User');
		$this->render('index',array(
			'dataProvider'=>$dataProvider,
		));
	}

	/**
	 * Manages all models.
	 */
	public function actionAdmin()
	{
		$model=new User('search');
		$model->unsetAttributes();  // clear any default values
		if(isset($_GET['User']))
			$model->attributes=$_GET['User'];

		$this->render('admin',array(
			'model'=>$model,
		));
	}

	/**
	 * Returns the data model based on the primary key given in the GET variable.
	 * If the data model is not found, an HTTP exception will be raised.
	 * @param integer $id the ID of the model to be loaded
	 * @return User the loaded model
	 * @throws CHttpException
	 */
	public function loadModel($id)
	{
		$model=User::model()->findByPk($id);
		if($model===null)
			throw new CHttpException(404,'The requested page does not exist.');
		return $model;
	}

	/**
	 * Performs the AJAX validation.
	 * @param User $model the model to be validated
	 */
	protected function performAjaxValidation($model)
	{
		if(isset($_POST['ajax']) && $_POST['ajax']==='user-form')
		{
			echo CActiveForm::validate($model);
			Yii::app()->end();
		}
	}
	
	public function actionChange_Password()
	{		
		$user = Yii::app()->user->iduser;
		
		$model=$this->loadModel($user);

		if(isset($_POST['User']))
		{
			$model->attributes=$_POST['User'];
			$model->confirmPassword = $_POST['User']['confirmPassword'];
			
			if($model->password != $model->confirmPassword){
				$model->addError('confirmPassword','The passwords don\'t match, please try again!');
				
			} else {			
				
				if($model->save()) {
					Yii::app()->user->setFlash('success', "Password Changed Successfully!");
					$this->redirect(array('site/index'));
				}
			}
		}
		
		$model->password= "";
		$model->confirmPassword= "";
		
		$this->render('update_password',array(
			'model'=>$model,
		));
	}	
}
